Tips-Of-Mine/infrastructure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,682 Commits 15 Branches 0 Tags
d5a7a6117111e13ceca1b0abc2af3f4262a9b450
Commit Graph

10 Commits

Author SHA1 Message Date
Jake Howard
d5a7a61171 Remove unnecessary use of become from some roles 
This should make execution much faster
 2024-09-09 17:09:03 +01:00
Jake Howard
47efe411da Disable headscale OIDC 
For now, I'm fine using the terminal. Might bring this back later, hence only commented out.
 2024-08-25 16:48:21 +01:00
Jake Howard
ffbba254fb Remove redundant quotes 2024-04-21 18:11:57 +01:00
Jake Howard
7c8d224c4a Add headscale ACLs 
Tags are managed entirely server side, so there's no priv esc issues.

This lets my devices do what they want, and server style devices can't do anything.
 2024-04-20 15:46:21 +01:00
Jake Howard
0dcc3f7c30 Use regular version of nginx on Arch 
`nginx-mainline` requires modules be recompiled each time, and isn't handled automatically. It's still a very new and maintained release.
 2024-02-29 19:46:32 +00:00
Jake Howard
8a1e21c79d Ensure headscale sees the correct IP 2024-02-29 17:41:29 +00:00
Jake Howard
29cac09b48 Remove explicit port for headscale 2024-02-01 18:32:53 +00:00
Jake Howard
0c6528f9ca Restrict access to headscale OIDC and API 2024-01-31 21:40:43 +00:00
Jake Howard
53c758a781 Monitor headscale with prometheus 2024-01-27 17:40:02 +00:00
Jake Howard
2ceeaf091d Deploy headscale 2024-01-27 14:18:37 +00:00